Privacy Policy

At Niveus Solutions, we value your privacy and are committed to protecting your personal data. The objective of this Privacy Policy (the “Policy”) is to protect the privacy of persons dealing or engaged with Niveus Solutions and to explain (i) what information we collect; (ii) how we collect, use, disclose, and store information in accordance with the legal requirements and in order to mitigate operational risks; and (iii) how you can control the collection, correction and/or deletion of the information provided by you.

Personal data 

Personal data means any data or information about an individual from which, either directly or indirectly, in combination with other information available or likely to be available from which that person can be identified and includes Sensitive personal data or information (SPDI). It does not include data where your identity has been removed (anonymous data).

INFORMATION WE COLLECT 

We may collect, use, store, and transfer different types of personal data about you, which we have grouped as follows: 

• Contact data that includes your email address(es), physical address, telephone numbers and emergency contact information.
• Identity data that includes your first name, last name, title, genderdate of birth, identifiers required for employment purposes  and job title.
• Marketing and communications data that includes your preferences in receiving marketing from us and your communication preferences. 
• Financial data including Financial Data including bank account details, tax identification numbers, and other necessary financial information for payroll and benefit processing.
• Employment Data including information necessary for managing employment benefits and statutory compliance, relevant medical and insurance details, data related to previous employments and other information necessary for background verification.
• Profile data includes your username and password, preferences, feedback, and survey responses, records of training programs. 
• Technical data includes internet protocol (IP) address, your login data, browser type and version, time zone setting, and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website or our other systems. 
• Usage data includes information about how you use our website.

We do not collect personal data about you other than the information which you voluntarily provide to us through this site to fulfill the purpose of your request such as to subscribe to a newsletter.

HOW WE USE THE INFORMATION 

• Improving our services. We may use the above personal data to form a view of what we think you may want or need or what may interest you  or for legitimate purposes related to employment. We use cookies and log file information to (i) remember information to save you the hassle of re-entering it during your next log-in; (ii) provide personalized content and information; (iii) monitor the effectiveness of our website; (iv) troubleshoot and rectify technology problems reported by our users or engineers; (v) help you effectively access your account information once you sign in. 
• Marketing. You will receive marketing communications from us if you have requested information from us or purchased services from us or if you have provided us with your details when you entered a survey or registered for an event or a promotion, and, in each case, you have not opted out of receiving emails. You can tell us not to contact you with marketing communications either at the point such information is collected or by following the unsubscribe instructions in any communication sent to you. You can also exercise this right at any time by contacting us using the contact details at the end of this Privacy Policy. Please note that where you opt out of receiving marketing messages, this will not delete your other personal data.
• Performance of Contract. Where we need to perform the contract, we are about to enter into or have entered into with you 
• Communication. We may use your email address to send you notifications and other messages, such as newsletters, changes to our service, special offers, etc. Generally, we do not rely on consent as a legal basis for processing your personal data other than in relation to sending third party direct marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by contacting us at marketing@niveussolutions.com 
• Identification. We may use your data to verify you when you create and access your account. When reasonably required to do so, your data may be used to detect and prevent fraud, spam, or content that violates our Terms & Conditions. 
• Please note that we will get your express opt-in consent before we share your personal data with any company outside Niveus Solutions.

HOW WE COLLECT YOUR PERSONAL DATA 

Niveus Solutions may collect personal information in several ways, including: 

User-Provided Information. 

• Directly from you when you submit your personal details at niveussolutions.com or subscribe to our services or when you are our employee, or engage with us in any capacity. We collect or receive information from you when you sign up for our services, participate in a contest or survey, provide us with feedback, are employed with us or otherwise contact us. 
• Fill in a form on this website (such as the one on our ‘Contact Us’ page)
• Create an account on our website (such as on our ‘career opportunities’ page or any employee portal page)
• Subscribe to any publications (such as our ‘Blogs’)

Automatically Collected Information 

• Automated technologies or interactions. As you interact with our website, we may automatically collect technical data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. Please note that when you disable or refuse cookies, some parts of this site may become inaccessible or may not function properly. A cookie may also convey anonymous information about how you browse the Niveus Solutions website. For the sake of clarity, a cookie does not collect any personal information about you. Usually, cookies are used as a means for Niveus Solutions’ websites to remember your preferences. As such, cookies are designed to improve your experience of Niveus Solutions’ websites.
• Third-party analytics providers. We receive technical data (standard internet log information and details of visitor behavior) from Google Analytics about visitors to this website. This information does not identify anyone. To opt out of being tracked by Google Analytics across all websites, visit: https://tools.google.com/dlpage/gaoptout

Collection of information by third-party sites

Like many other commercial websites, our site contains links to other sites whose information collection practices may be different than ours. Users should consult the other sites’ privacy policies, as we do not have any control over any information that may be submitted to, or collected by, such third parties.

DISCLOSURES OF YOUR PERSONAL DATA 

• Niveus Solutions does not rent, sell, or trade your personally identifiable information to others without your notice. However, in order to deliver the services you require, Niveus Solutions may disclose your personal information, to the extent required only, to the below illustrative agencies/organizations outside of Niveus Solutions who agree to keep your information confidential and to their treatment according to the laws and rules on personal data protection. Your personal information is disclosed to these agencies/organizations only in relation to the services being provided to us or to you and/or in connection with improvisation of services through innovations: 
  1. Affiliates 
  2. Sales and Marketing 
  3. Business associates/business partners/ channel partners/ agents, who are contractually associated with us for providing service to us or to our customers, either directly or indirectly and parties who assist Nievus in operating Niveus’ website, or in conducting our business (including lawyers and accountants), payment partners. 
  4. Background Verification and Pre-Employment Screening Agencies
  5. Web site usage analysis. Niveus Solutions takes reasonable steps to ensure that these organizations are bound by confidentiality and privacy obligations in relation to the protection of your personal information 
  6. Business Transfers. If we are acquired by or merge with another company, or if substantially all our assets are transferred to another company (which may occur as part of merger, demerger, assignment, sale of business and/or on account of liquidation proceedings), we may transfer your personal data to such other company/s. We may also need to disclose your personal data before any such acquisition or merger, for example to our advisers and any prospective purchaser’s advisers & 
  7. Sharing Aggregated and De-Identified Information. We may use your personal data to create aggregated and anonymised information which we may share with third parties. Nobody can identify you from that anonymised information. In other circumstances we may use pseudonymised personal data before sharing it with a third party so that we can re-associate you with the information once it has been processed and returned to us. Whilst the third party will not be able to identify you from the pseudonymised information, we will still be able to. For avoidance of doubt, we treat pseudonymised data as though it were personal data and ensure the same level of protection for it when sharing with third parties. 
• We may store personal information in locations outside the direct control of Niveus Solutions (for instance, on servers or databases co-located with hosting providers and on cloud service providers). 
• Whenever in the course of sharing personal information to other countries, we ensure that the information is transferred in accordance with applicable laws on data protection. 
• Except as otherwise described in this Privacy Policy, Niveus will not disclose your personal information to any third party unless required to do so by law or regulation or if we believe that such action is necessary to (a) conform to the law, comply with legal process served on us or our affiliates, or investigate, prevent, or take action regarding suspected or actual illegal activities; (b) to enforce our Terms & Conditions, take precautions against liability, to investigate and defend ourselves against any third-party claims or allegations, to assist government enforcement agencies, or to protect the security or integrity of our site; and (c) to exercise or protect the rights, property, or personal safety of Niveus Solutions or others.
• We share information about you with companies and third parties that aggregate it to provide analytics and measurement reports to us. 
• We may share non-personally identifiable information (such as anonymous usage data, referring/exit pages and URLs, platform types, number of clicks, etc.) with third parties to help us track and understand usage patterns.

COMPLIANCE WITH LAWS

We are committed to complying with all applicable laws and regulations governing the collection, use, disclosure, and protection of personal data and sensitive personal data or information including without limitation the General Data Protection Regulation (GDPR),  Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, Information Technology Act, 2000, as well as other relevant data protection laws and regulations. At Niveus, we value the confidentiality of your sensitive personal data or information and adheres to strict guidelines regarding its disclosure laid down by applicable data protection laws including without limitation the Information Technology (Reasonable security practices and procedures and sensitive personal data or information) Rules, 2011 that include:

1. Disclosure to Third Parties : We will not disclose sensitive personal data or information to any third party without obtaining prior permission you, except in the following circumstances – (i) Where you have agreed to such disclosure under a lawful contract including this Policy or, (ii) Where disclosure is required to comply with a legal obligation, court order, or regulatory requirement.
2. Disclosure to Government Agencies : sensitive personal data or information may be disclosed, without prior consent, to government agencies or authorities mandated under the law to obtain information, for the purpose of identity verification or for prevention, detection, investigation, prosecution, and punishment of offenses. Such agencies must provide a written request, clearly stating the purpose of obtaining the information, and the data obtained will not be published or shared with any other person or entity.
3. Court-Ordered Disclosures : We are required to disclose sensitive personal data or information to third parties if mandated by any applicable law or court order in force, ensuring full compliance with legal obligations.
4. Prohibition on Further Disclosure : Any third party receiving sensitive personal data or information from us under these conditions is strictly prohibited from further disclosing the information to other parties.
5. No Public Disclosure : We will not publish any  sensitive personal data or information or make it publicly accessible. All disclosures will be made on a confidential basis, in compliance with applicable privacy and data protection laws.

INTERNATIONAL TRANSFERS 

•  We are a global enterprise with operations in countries around the world.
•  Niveus Solutions has implemented global privacy practices for processing personal data protected under various data protection laws. Niveus Solutions transfers personal data between the countries in which we operate in accordance with the standards and conditions of applicable data privacy laws, including standards and conditions related to security and processing.

DATA SECURITY 

• We have put in place appropriate security measures such as physical, managerial and technical safeguards to preserve the integrity and security of your personal data and to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. We maintain a documented information security programme that includes technical, managerial, operational, and physical security measures. These measures are designed in line with the nature of our business and are commensurate with the sensitivity of the information assets being protected. We are in compliance with the international Standard IS/ISO/IEC 27001 on “Information Technology – Security Techniques – Information Security Management System – Requirements” to ensure robust protection for sensitive personal data or information. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality. However, please note that this is not a guarantee that such information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards. 
• To honor your privacy and security, we take reasonable steps to verify your identity prior to granting access to your account. You are solely responsible to maintain the secrecy of your unique password and account information. 
• We have put in place procedures to deal with any suspected personal data breach and will promptly notify you and any applicable regulator of such a breach where we are legally required to do so, and in accordance with the notification procedures set forth in this Privacy Policy. 
• Although we employ security measures to prevent unauthorized access to information we collect online, we cannot guarantee the privacy of personal data you transmit over the web, or that may be collected in transit by third parties, including any consultants that provide services to us. 
• Children’s Privacy: Protecting the privacy of young children is especially important. For that reason, Niveus does not knowingly collect or solicit personal information from anyone under the age of 18 or knowingly allow such persons to register on its website. If you are under 18, please do not send any information about yourself to us, including your name, address, telephone number, or email address. No one under age 18 is allowed to provide any personal information to Niveus Solutions without the consent of a parent or legal guardian. In the event that we learn that we have collected personal information from a child under age 18 without verification of parental consent, we will delete that information as quickly as possible. If you believe that we might have any information from or about a child under age 18, please contact us at contact@niveussolutions.com

HOW LONG WE RETAIN YOUR PERSONAL DATA FOR 

• We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. 
• Your information or data will primarily be stored in electronic form. However, certain data can also be stored in physical form. Your information will remain with us during your active association on account of subscription to our services and/or on account of business association with us in whatsoever form, direct and indirect. Post your disassociation, the information will be retained by us for a minimum period of one hundred and eighty (180) days or such longer period as may be mandated in accordance with law and/or under specific instructions from any Court, Government and Statutory Authorities. 
• To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements. 
• We store deleted data on our servers for a short period in case you wish to reverse deletion. Once we delete the information, we may not be able to retrieve it.

YOUR LEGAL RIGHTS 

Under certain circumstances and depending on your location you have rights under applicable data protection laws in relation to your personal data. 

1. Rights under Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011: If you are within the territory of India, to the extent your personal data and sensitive personal data or information (SPDI) is collected by us, you are entitled to the following rights under the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 :
   • Right to Access and Review Personal Data:  You have the right to access the personal information and SPDI that you have provided to us. Upon written request, we shall provide you with access to your data to allow you to review its accuracy and completeness.
   • Right to Rectification : If any personal data or SPDI is found to be inaccurate or incomplete,you have the right to request correction or amendment. We shalll take reasonable steps to update or correct such information promptly.
   • Right to Withdraw Consent : You have the right to withdraw your consent for the collection, use, or disclosure of their personal data and SPDI at any time. Withdrawal of consent must be communicated in writing. In such cases we l have the option not to provide services for which the said information was sought. 
   • Right to Information on Collection Purpose : You have the right to be informed about the purpose for which your personal data and SPDI are being collected, used, and disclosed.
   • Right to Restrict Disclosure : Except as required by law, you may specify restrictions on the disclosure of their SPDI to third parties. 
   • Right to Redress Grievances: We have established procedures for addressing any grievances related to the processing of personal data and SPDI.We shall respond to such requests within one month from the date of receipt.
2.  Rights under the Personal Data Protection Act, 2012 (PDPA)
   If you are located in Singapore, we collect, use and process your data in accordance with the Personal Data Protection Act (PDPA), 2012. Details of our obligations, and your rights and other essential provisions are set out herein below. 
   • Accuracy of your personal data : We will make all reasonable efforts to ensure that the personal data collected by us is accurate, complete and up-to-date. We shall adopt methods to verify and authenticate information provided by you. We shall make sure that any and/or all changes made or requested are updated in our records. We rely on the information you provide to us for performing our obligations/ Services to you, you are required to provide us with accurate and complete information and to promptly update us in the event there are any changes to your personal data. . 
   • Your Rights as a User or Visitor 
   • You shall, to the extent that the applicable law allows, have the right to request access to your personal data held by us. 
   • You have a right to request correction/ rectification of your personal data entrusted to us or update your personal data held by us. 
   • You have a right to request us at any time to limit the processing and use of your personal data. 
   • You may by giving notice, withdraw any consent given to us for the collection, use or disclosure of your personal data. We shall upon receipt of such notice inform you of the repercussions of withdrawing your consent. We may not allow withdrawal of consent in circumstances where it is required or authorised under this Act or any other written law. It is essential to note that your withdrawal of consent could result in legal consequences arising from such withdrawal. 
   • Transfer of Personal Data outside Singapore: In fulfilling our obligations to you it may become necessary to transfer data that we collect from you to jurisdictions outside Singapore for processing and storing. By providing information to us, you are consenting to the transfer, storing and processing of that information outside Singapore in accordance with the terms of this privacy policy.
3. Rights under other jurisdictions :
   If you are located in a jurisdiction where additional data protection laws apply to you, including but not limited to the European Union (EU) or California, we will collect, use, and process your personal data in accordance with the relevant governing laws, including, without limitation, the General Data Protection Regulation (GDPR) for EU citizens and residents, and the California Consumer Privacy Act (CCPA) for residents of California. We are committed to complying with all applicable data protection laws, whether current, modified, or enacted in the future, and will take appropriate measures to ensure that your personal data is handled in accordance with such laws.
4. Exercising your rights
   If you wish to exercise any of the rights set out above, please contact us through the contact details provided hereunder. We respond to and fulfill our obligations pursuant to your direct requests and strive to process them within thirty (30) days from receipt of your request. We reserve the right to request authentication and appropriate identification. Please note that we will be able to comply with your request to the extent that it does not violate any applicable law or infringe any third person’s rights.

HOW TO CONTACT US 

• If you have any questions about this Privacy Policy, the practices of this site, complaints or your dealings with this website, please send a mail to dpo@niveussolutions.com
• You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances. 
• We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

CHANGE IN PRIVACY POLICY 

We may periodically update this Policy to comply with privacy regulations, describe new website features, products or services we offer and how it may affect our use of information about you. Any change in our Privacy Policy will be notified to you and be made public on our website.

DISCLAIMER 

• Terms of this privacy policy are subject to the Niveus Solutions ‘Terms & Conditions’ of the Site which are hereby incorporated impliedly and are deemed to have been read, understood and unconditionally accepted by you. 
• We believe that there are various factors due to which the compliance of the above Policy may go out of our control, including factors of force majeure and in such situations, we shall not be held responsible. 
• Niveus Solutions assumes no responsibility for the content or privacy practices of any other web site, company or organization, including web sites that may be accessed through any link from this Website. 
• While every attempt is made to ensure that the information contained in this site has been obtained from reliable sources, Niveus Solutions is not responsible for any errors or omissions, or for the results obtained from the use of this information. All information in this site is provided “as is”, with no guarantee of completeness, accuracy, timeliness or of the results obtained from the use of this information, and without warranty of any kind, express or implied, including, but not limited to warranties of performance, merchantability and fitness for a particular purpose. In no event will Niveus Solutions, its business associates or employees thereof be liable to you or anyone else for any decision made or action taken in reliance on the information in this Site or for any consequential, special or similar damages, even if advised of the possibility of such damages. 
• Certain links in this site may connect to other websites maintained by third parties which have their own privacy and cookie policies, over which Niveus Solutions has no control. Niveus Solutions makes no representations as to the accuracy or any other aspect of information contained in other websites.

GLOSSARY OF TERMS USED IN THIS PRIVACY POLICY 

• Legitimate Interest means the interest of our business in conducting and managing our business to enable us to give you the best service/product and the best and most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests. We do not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law). 
• Internal third parties mean other companies in the Niveus Solutions Group acting as joint controllers or processors and who provide IT and system administration services, undertake leadership reporting and/or provide services as part of the processing of the personal data described in this privacy policy. 
• External third parties mean: 
  • Service providers acting as processors who provide IT and system administration services; 
  • Professional advisers acting as processors or joint controllers including lawyers, bankers, auditors and insurers who provide consultancy, banking, legal, insurance and accounting services; 
  • Regulators (including data protection supervisory authorities) and other authorities acting as processors or joint controllers based in the United Kingdom and/or EEA who require reporting of processing activities in certain circumstances.

Contact Details:

Full name of legal entity: Niveus Solutions

Name or title of data protection officer: Data Protection Officer

Email address: dpo@niveussolutions.com

Postal address of data protection officer: 4th Floor, Amruth Arcade, Beside Govinda Kalyana Mantapa, Kinnimulki, Udupi, Karnataka 576101, India